One platform.
Four roles. Zero spreadsheets.
ermine unifies the work of leadership, compliance, contributors and auditors in a single source of truth. Everyone sees what they need to see. Every decision is recorded.
A dashboard that is
the single source of truth
Risks, controls, evidence, audits. Everything connected, everything live. No exporting to Excel, no meetings to check the status.
- Interactive 5Γ5 risk matrix with drill-down to each risk
- Control efficacy by regulation, area or owner
- Pending evidence inbox with smart alerts
- Complete history: who did what and when, always
Risk matrix
Residual risk Β· Q4 2026
ISO 27001 Β· 100% controls ok
Control efficacy
3 actions
require your attention
Evidence inbox
Livepolicy-v3.xlsx
Drive 15 Mar β Linkedsecurity-audit-2025.pdf
Email 14 Mar β Linkedprocedures_gdpr.docx
Drive 12 Mar β Pendingrisk-assessment.xlsx
Drive 11 Mar β Linkedquarterly-report.eml
Email 10 Mar β Linked5 evidences Β· last updated 2 min ago
View all β
Evidence collected
without manual effort.
ermine connects with Drive, Email, ERP and more to collect and link evidence automatically to the right controls. No copying, no pasting, no chasing.
Smart linking
Each piece of evidence is matched to the relevant control without manual configuration.
Expiry alerts
We notify you when evidence becomes stale or outdated.
Full audit trail
Every change is logged with author, timestamp, and reason.
Full traceability.
Every action. Every person.
Every change to a control, evidence item or risk is logged with who, when, and why. Your external auditor can review everything without a chain of emails.
Immutable log
The change history cannot be modified or deleted.
Granular access
The external auditor sees only what they need, without access to sensitive data.
PDF export
Generate the audit report ready to present in seconds.
Activity log
Last 24 hUploaded evidence for control A.5.1
Approved control A.8.3 β Asset management
Collected 12 new pieces of evidence from Drive
Marked control A.12.1 as "under review"
Assigned control A.12.1 to IT team
Detected control with no evidence (A.7.2)
Acme Corp S.A. β Global view
Acme Corp S.A.
Consolidated group Β· 307 controls
86%
compliance
Madrid HQ
127 controls
Barcelona Office
84 controls
Berlin GmbH
96 controls
Manage groups,
subsidiaries and branches.
A single ermine instance can manage multiple legal entities or locations with consolidated views for leadership and local views for each team.
Consolidated view
The CISO or board sees the global status of all entities at a glance.
Shared controls
Reuse controls and evidence across entities within the same group.
Entity-level permissions
Each local team only accesses their own data.
ermine by the numbers
Results that speak
for themselves.
Pre-configured controls
Per regulation, ready to adapt from day one.
Weeks to implement
Average time from signature to first audit-ready state.
Spreadsheets needed
To manage your compliance programme with ermine.
Guaranteed traceability
Every piece of evidence, auditable at any time.
Designed for the roles that already
work in compliance
Each role has its own view, permissions and responsibilities. No reinventing the organisation, no confusing your team.
Leadership
CEO, COO, unit directors
- Executive dashboard with control efficacy, critical risks and real-time trends
- Consolidated view of all ongoing regulations
- Smart alerts only when a decision is needed
- Board reports generated with a single click
Compliance Officer
Compliance officer, quality or security manager
- Set up regulations, controls and responsibilities
- Assign contributors and review evidence
- Coordinate internal and external audits
- Generate regulatory documentation automatically
Contributors
Teams that contribute evidence day to day
- Receive specific tasks in their inbox
- Upload evidence from Excel, Drive, ERP or email
- Only see the controls that apply to them
- Automatic traceability of every action
External Auditors
Certification auditors or consultants
- Read-only access to the agreed scope
- View evidence, risks and controls of the framework they audit
- No access to sensitive data outside their scope
- Generate their reports with live data
Connect with your systems in minutes
ermine integrates with the tools you already use. No migration, no replacement. Just collects and centralises.
Excel / CSV
Import and export
Google Drive
Documentary evidence
Microsoft 365
SharePoint, OneDrive, Teams
Automated forwards
ERP
Sage, SAP, Dynamics
CRM
Salesforce, HubSpot, Zoho
SSO
Azure AD, Okta, Google
API REST
Webhooks and endpoints
Don't see your system? Talk to us β ermine supports custom integrations via API.
How does ermine work?
Three steps to go from regulatory complexity to total control.
Analysis of your situation
We connect with your risk and compliance teams in a 60-minute session. We identify applicable frameworks, the current state of your controls and priority gaps.
β Output: diagnosis and personalized roadmap.
2-week setup
We activate your tenant, import your current controls and procedures, and map them against the frameworks you need. Your team can operate from day one.
β Includes training, integrations and migrated data.
Continuous operations
ermine automatically collects evidence, alerts on deviations and generates the reports you need for audits and committees. Your team decides, it doesn't chase PDFs.
β ERM on autopilot, you in control.
Start with ermine in 2 weeks
Free 30-minute demo. We show you how it would fit your organisation.
- Up and running in 2 weeks, not 6 months
- Pre-configured templates for your sector's regulations
- Dedicated support throughout the whole process
Request your demo
No commitment. We reply within 24 h.